3 matches found
CVE-2016-2104
Multiple cross-site scripting XSS vulnerabilities in Red Hat Satellite 5 allow remote attackers to inject arbitrary web script or HTML via 1 the label parameter to admin/BunchDetail.do; 2 the packagename, 3 searchsubscribedchannels, or 4 channelfilter parameter to software/packages/NameOverview.d...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in Red Hat Satellite 5 allow remote attackers to inject arbitrary web script or HTML via 1 the label parameter to admin/BunchDetail.do; 2 the packagename, 3 searchsubscribedchannels, or 4 channelfilter parameter to software/packages/NameOverview.d...
CVE-2016-2104
This CVE relates to multiple XSS vulnerabilities in Red Hat Satellite 5 (Spacewalk) where an attacker can inject arbitrary script/HTML via parameters such as label, package_name, search_subscribed_channels, channel_filter, or vectors like input:hidden /bean:message . The issue is documented acros...